SIEM technologies enable the centralized collection and analysis of security-related logs and other data, primarily intended to improve compliance with industry regulations and increase the effectiveness of detecting and analyzing security threats. Though SIEM products can deliver significant benefits, they often involve extensive adaptation to each unique customer environment and must be continually adjusted to changes in the internal technical environment and the security threat landscape. In today's cost-constrained market, many companies need to successfully execute and manage a successful SIEM program with limited resources. "Vigilant is one of a relatively new class of companies that specializes in co-sourcing security operations centers," said Nick Selby, security research director at the 451 Group. "From a technical standpoint, Vigilant is first rate, and the services and content it offers are highly useful to large-scale enterprise. The company seeks not merely to codify content objects but to proffer guidance about the source devices that must be in place to support the use cases and, by extension, the customer's compliance with regulatory rule sets themselves. Vigilant's Fusion for SIEM offering seeks to expand on this, to increase the likelihood of customer success."
Fusion for SIEM helps companies achieve greater benefits from SIEM in a faster, more effective and cost efficient manner. The service includes an assessment of the customer's existing SIEM solution to determine how well it meets key security program and IT risk management requirements. The Fusion for SIEM operations team then works with the customer to develop a roadmap to address the gaps and advance the SIEM configuration through a series of consecutive projects which fulfill the requirements in logical stages. Each stage is associated with a set of specific objectives, and progress is tracked through ongoing weekly, monthly and quarterly security metrics reports.
"This structured, phased approach guides the customer through a process of 'maturing' the SIEM so that it provides increasing value to the business," said Alison Andrews, chief executive officer (CEO) for Vigilant. "No matter how big a gap there is between where the customer is today with SIEM versus where they want to be in the future, we accelerate and measure their progress."
The Fusion for SIEM service is delivered via a Virtual Private Network (VPN) connection. It continuously tunes and optimizes the SIEM and includes 24x7 monitoring of SIEM devices, patching and other system management functions, as well as ongoing verification of data collection. For customers that need additional expertise or resources to manage SIEM deployments, Fusion for SIEM provides a proven managed service solution that doesn't compromise the security of their information, leaving customer data on premise and within their own control. The service leverages Vigilant's Fulcrum Framework, a SIEM configuration library that associates security standards and compliance requirements to the specific rules, filters, reports and other elements that must be included in the SIEM to meet each customer's unique combination of requirements. This pre-built, stored knowledge of SIEM "best practices" enables Vigilant to implement advanced, field-tested SIEM requirements quickly and precisely.
About Vigilant Vigilant LLC provides on-site and managed services that help IT security teams better defend and enable today's dynamic business by refining and extending the security information and event management infrastructure. The company's pragmatic approach solves today's urgent security problems, while enabling rapid progress toward longer-term security program objectives. Vigilant empowers customers to more efficiently respond to shifting threats, achieve regulatory compliance, prioritize protection of services that drive revenue and competitive advantage, and measure progress of the overall IT risk management program. Founded in 2003, Vigilant is headquartered in New York and serves a wide range of global and regional organizations whose mission requires them to secure highly sensitive and regulated services.